CRITICALπŸ‡΅πŸ‡± Wersja polska

CVE-2025-29030

CVSS 9.8v3.1pub. 2025-03-14upd. 2025-03-19

Tenda AC6 v15.03.05.16 was discovered to contain a buffer overflow via the formWifiWpsOOB function.

πŸ€– AI Analysis
How it works

The vulnerability stems from improper input handling in the formWifiWpsOOB function, leading to a buffer overflow (CWE-787 β€” writing outside the intended memory area). An attacker can send a specially crafted network request that overwrites critical memory areas of the device. Due to the network vector (AV:N), lack of privilege requirements (PR:N), and user interaction requirements (UI:N), the exploit can be performed entirely remotely.

Impact

Successful exploitation of this vulnerability may allow an attacker to execute arbitrary code remotely (RCE) on the device, and consequently take full control of the router, violate data confidentiality and integrity, and cause device unavailability.

Mitigation & patch

Apply patches available from the manufacturer according to the references. If an update is not available, it is recommended to restrict access to the device's administrative interface only to trusted networks and disable WPS functionality if not required.

Who is affected

Tenda AC6 firmware version v15.03.05.16

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Tenda Ac6

    HW
    Tenda
    wszystkie wersje
  • Tenda Ac6 Firmware

    OS
    Tenda
    15.03.05.16
πŸ”΅
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Memory
CWE
References

Related vulnerabilities

CVE-2025-52221CRITICAL9.8PL βœ“ten sam produkt

Buffer Overflow w Tenda AC6 – funkcja formSetCfm

CVE-2025-27129CRITICAL9.8PL βœ“ten sam produkt

Auth Bypass + RCE w Tenda AC6 via HTTP (CVE-2025-27129)

CVE-2025-29031CRITICAL9.8PL βœ“ten sam produkt

Buffer overflow w Tenda AC6 β€” funkcja fromAddressNat

CVE-2025-29029CRITICAL9.8PL βœ“ten sam produkt

Buffer overflow w Tenda AC6 β€” funkcja formSetSpeedWan

CVE-2025-25343CRITICAL9.8PL βœ“ten sam produkt

Buffer overflow w Tenda AC6 – funkcja formexeCommand

CVE-2025-29030 β€” Tenda β€” Ac6 β€” CRITICAL β€” CVSS 9.8 | CVEbaza.pl